Malcolm v5.2.2 is a patch release with some improvements to the API and a fix for using Zeek intelligence files on Hedgehog Linux.
- Added more capabilities to the API
- added
/document/
API - added
filter
ability to/agg/
and/document/
API - added more documentation and examples
- added
- For Zeek intel. files, changed location from
/opt/zeek/share/zeek/site/intel
to/opt/sensor/sensor_ctl/zeek/intel
so that they aren't lost on reboot
Malcolm and Hedgehog Linux may be obtained by pulling or building the Docker images and/or building the ISO installer images as described in the documentation. Unofficial ISO installer images for Malcolm and Hedgehog Linux are not hosted on GitHub, but may be downloaded from https://malcolm.fyi/download/.